Synopsis:          Moderate: firewalld security, bug fix, and enhancement update
Advisory ID:       SLSA-2016:2597-2
Issue Date:        2016-11-03
CVE Numbers:       CVE-2016-5410
--

The following packages have been upgraded to a newer upstream version:
firewalld (0.4.3.2).

Security Fix(es):

* A flaw was found in the way firewalld allowed certain firewall
configurations to be modified by unauthenticated users. Any locally logged
in user could use this flaw to tamper or change firewall settings.
(CVE-2016-5410)

Additional Changes:
--

SL7
  noarch
    firewall-config-0.4.3.2-8.el7.noarch.rpm
    firewalld-0.4.3.2-8.el7.noarch.rpm
    firewalld-filesystem-0.4.3.2-8.el7.noarch.rpm
    python-firewall-0.4.3.2-8.el7.noarch.rpm
    firewall-applet-0.4.3.2-8.el7.noarch.rpm

- Scientific Linux Development Team